Your network consists of one Active Directory domain. The functional level of the domain is Windows Server 2008. The domain has 30 domain controllers. Twenty administrators manage the domain. You plan to implement an audit and compliance policy. You need to ensure that all changes made to Active Directory objects are recorded. What should you do?
A. On all domain controllers, run the Security Configuration Wizard (SCW).
B. In the Default Domain Controller Policy, configure a Directory Services Auditing policy.
C. In the Default Domain Controller Policy, configure and implement a file-level audit policy for the SYSVOL volume.
D. Create a Group Policy object (GPO) linked to the Domain Controllers OU. Configure the GPO to install the Microsoft Baseline Security Analyzer (MBSA).